New FCC Rules Could Ban WiFi Router Firmware Modification

An anonymous reader writes: Hackaday reports that the FCC is introducing new rules which ban firmware modifications for the radio systems in WiFi routers and other wireless devices operating in the 5 GHz range. The vast majority of routers are manufactured as System on Chip devices, with the radio module and CPU integrated in a single package. The new rules have the potential to effectively ban the installation of proven Open Source firmware on any WiFi router.

ThinkPenguin, the EFF, FSF, Software Freedom Law Center, Software Freedom Conservancy, OpenWRT, LibreCMC, Qualcomm, and others have created the SaveWiFi campaign, providing instructions on how to submit a formal complaint to the FCC regarding this proposed rule. The comment period is closing on September 8, 2015. Leave a comment for the FCC.

Apple can't modify Time Machine Firmware?

[BoRegardless]

Boy, that is going to work well, now, won't it.

Re:Apple can't modify Time Machine Firmware?

[Wrexs0ul]

I was just thinking that. This is so broad as to be unusable.

And mature products like DD-WRT are what make consumer-grade routers fly. It's pretty much the only reason I'll buy an ASUS, because the stock firmware doesn't have the feature set needed for latency sensitive hardware.

Re:Apple can't modify Time Machine Firmware?

[DigiShaman]

The software logic can be modified via firmware. But the RF side of things must be baked in as I understand it. So if there's WiFi bug, depending on where in the OSI layer it effected, (closer to the hardware for example), the device might have to be recalled and shredded and replaced with a newer product rev.

Re:Apple can't modify Time Machine Firmware?

[Megane]

Um, that's the problem here. The FCC wants the non-RF side of things to be "baked in" now, too. Or at least protected by the secure bootloader type shit that you see in cell phones. If it's got 5GHz, too bad, they can't have you installing custom firmware, even when the radio itself has sufficient protections.

Re:Apple can't modify Time Machine Firmware?

[DigiShaman]

Layer 1, maybe 2 would be baked in. But Layer 3, if that that can't be modified, that's a major major problem. Meaning, if Apple isn't allowed to have the firmware updated for post-sales support on a routing bug, that' very bad news. That is to say, might as well make it all ROM based storage.

I suppose they could make updates in the form of console-like cartridges; swap em out. YUCK!

Re:Apple can't modify Time Machine Firmware?

Actually no. The article I read said that the FCC is requiring manufactures to make their firmware more secure against modification by unauthorized parties.

Re:Apple can't modify Time Machine Firmware?

[DrVxD]

The article I read

You must be new around here. You'll learn.

Re:Apple can't modify Time Machine Firmware?

[Z00L00K]

Not to mention that DD-WRT is often the only way to make a security upgrade of an older router.

The corner case that the FCC want to address is not worth the risk increase that may leave a lot of devices insecure because they have issues that haven't been discovered today.

Re:Apple can't modify Time Machine Firmware?

[Z00L00K]

And if the RF is baked in there's still a way around it for those that want to increase the power. I did a search on eBay and first item was a 6W amplifier. A bit further down a 30W... The latter might be good if you want to cook your neighbor.

Re:Apple can't modify Time Machine Firmware?

[TWX]

And that's already generally against the rules. CB radios aren't supposed to be over 5W as they're for local communications, but routinely people will increase the power and use collinear arrays for increased gain.

Re:Apple can't modify Time Machine Firmware?

Isn't this about the radio firmware and not about a router firmware? It wouldn't make sense otherwise, although I have to admire the FCCs confidence in doing formal proofs of every radio module in the market..

Re:Apple can't modify Time Machine Firmware?

[Gr8Apes]

The restriction seems to the RF portion only: "and would affect the operating parameters of frequency range, modulation type or maximum output power". So if the firmware doesn't effect any of those 3 items, you're not subject to this.

Re:Apple can't modify Time Machine Firmware?

[Grishnakh]

The software logic can be modified via firmware. But the RF side of things must be baked in as I understand it.

No, it's not. Alternative firmwares frequently allow modifying both the transmit power and the channels, which can easily make your device operate illegally. The channels, for instance, are different in, say, the US and Japan; some channels that are legal to use in Japan are illegal in the US. With mfgr firmware, this isn't a problem because they lock that stuff out in the ones they ship to the US, but open-source stuff doesn't do that (and can't, since you can modify it yourself since you have the source code).

Re:Apple can't modify Time Machine Firmware?

[JWSmythe]

That's going to work just as well as warranties.
"Oh my gosh, I can't void the warranty!"
"Oh my gosh, The FCC doesn't want me doing that!"

I wish them the best.

Re:Apple can't modify Time Machine Firmware?

[DigiShaman]

Sure, absolutely. I should have clarified however as to what I meant was, what will happen, not how things currently are.

Honestly, I could care less about modifying WiFi at that levels. They can bake in Layer 1. I'm more concerned about manufactures being hamstrung by their ability support WiFi products post sales. And I suppose open source WiFi kit will still be available with with the exception of Layer 1 and possibly 2 being set as-is at the hardware level. In essence, i just hope this process isn't rushed and that all things considered mitigate overreaching unintended consequences. But then again, I'm not the only one.

Re:Apple can't modify Time Machine Firmware?

Have no fear, the government is here to help. lulz

Re:Apple can't modify Time Machine Firmware?

[RockDoctor]

I was just thinking that. This is so broad as to be unusable.

... without turning all users into criminals.

I can't see what is wrong with this.

Re:Apple can't modify Time Machine Firmware?

[lott11]

Why is it that you can see for what it is. It is so the Feds, can come in at any time that is all. They do not care if you are hogging or using all the 5 GHz band, it is that you can block them with DDWRT. The fact that you can disable a hole that it is already there, that means they would have to hack in you router. Cisco was distributing all routers with holes in firmware, most people in the US and UK use there cell at home. There by giving the access codes to any one, just by walking by any scanner or cell phone with the right software. Don't you get it with DDWRT and a firewall you can lock any and all unknown mac address, if you enable that option. I tolled my kids turn on all devices that use the Wifi, ones I ID all them I lock the net work no other devices can use my net work. That is the reason why this is becoming a law, not because any other reason. So do you really think this is a security concern, yes but not for your benefit. How many Asus, TP Link, Cisco and other had fast link software that was simple to break in. or did you all forget that part, it took how long for a new firmware and some did not even get any updates.

Re:Apple can't modify Time Machine Firmware?

[Holi]

this only affects routers using the 5ghz frequencies.

or else what, exactly?

someone from the FCC gonna come bust down my door and make me plug in to the management console to make sure I'm not using WRT?

Re:or else what, exactly?

I imagine like many of these laws, it's only going to matter when someone does something wrong enough to get noticed.

Re:or else what, exactly?

[jonsmirl]

No, they want the routers to ship with CPU Trusted mode turned on. Without access to the private key you won't be able to load WRT.

This a security nightmare since you will now be dependent on router manufacturers for issuing security updates and remotely loading them into your router. We all know how well that has gone in the past.

I also believe that to date the FCC has received zero actually complaints about someone illegally modify current routers. So in attempting to address this imagined problem the FCC is going to enlarge a gigantic real problem (ie unpatched routers).

Re:or else what, exactly?

[bob_super]

We couldn't get the rape, hate crime and murder charges to stick... But you're going down for updating your WiFi!
Justice Has Been Served !!!!

Re:or else what, exactly?

[rahvin112]

All they would have to do is what they do with cell phones. The radio would have it's own realtime OS that controls the radio that would be separate from the main OS driving the device.

Re:or else what, exactly?

We couldn't get the rape, hate crime and murder charges to stick... But you're going down for updating your WiFi!
Justice Has Been Served !!!!

Very true. But allow me to rephrase: You did or said something the government didn't like... So you're going down for updating your WiFi!

Re:or else what, exactly?

[Grishnakh]

No, they're requiring the manufacturers to put secure bootloaders on their devices, so you can't load your DD-WRT firmware unless it's been cryptographically signed, which you can't do because you don't have the correct private key to do so.

This doesn't mean it'll be impossible to load an alternative firmware, but it'll make it orders of magnitude more difficult (and likely require using a JTAG debugger to do so).

Re:or else what, exactly?

[plover]

I also believe that to date the FCC has received zero actually complaints about someone illegally modify current routers. So in attempting to address this imagined problem the FCC is going to enlarge a gigantic real problem (ie unpatched routers).

There's the clue to "follow the money." If this isn't a real problem, it's likely legislation that's been written by some big company whose profit model is threatened by open source. Look for the sponsors to be Cisco or Belkin, someone who would benefit by selling you replacement hardware if their old hardware gets hacked.

And that suggests a potential cure.

If this is to go forward, it needs to come with a big safety, hacking, and consumer safety clause, something like "Due to the restrictive nature of this rule, the vendors of devices subject to these restrictions must offer a free 20 year warranty repair or replacement of any device found to have a flaw in either the hardware or the software included with the device, including any flaws that expose the device to unauthorized access or use. This replacement must include free shipping of the replacement part, free return shipping of the failing device, and free on-site installation of the replacement device. If repairs can be made via software update, the manufacturer may opt to update all affected machines remotely. All such repairs must be completed within one month of the FCC being made aware of the flaw. This free service must be extended for 20 years from the date of the device registration with the FCC. Any company who dissolves or reorganizes before the 20 year span expires will automatically transfer the liability for free replacements to the majority acquirer of their assets. Non-compliance with this law will result in fines to the manufacturers and distributors of these devices equal to twice the retail purchase price at the date of the sale of the first device multiplied by the quantity of devices manufactured, with the fines to be disbursed equally to customers who physically present the device to an authorized FCC representative, and the FCC."

If they still want this law when it includes a poison pill like this, then we'll all be cheering for bugs to be found every month so we can get another "router check" from them.

Re:or else what, exactly?

[dl_sledding]

Either follow the money, or follow the power...

This rule also potentially allows the alphabet agencies to require manufacturers to insert back doors for them, and eliminates the risk of the owner finding out or eliminating the access by changing the firmware. The manufacturers get protection from customer backlash and would be more willing to insert the back doors.

Win-win for everyone. Except, of course, the consumer. But since when has any government agency been accused of consumer advocacy?

Build your own router

You can buy an ALIX or Soekris board with a case and wifi card, then install your favorite router distribution on it such as pfSense

Re:Build your own router

[idontgno]

Dammit. No mod points.

Yes, this is the answer. If commodity Wifi routers become lock boxes, make non-commodity non-firmware Wifi routers. The more you tighten your grip, FCC, the more general-purpose computing systems will slip through your fingers.

Re:Build your own router

Wrongo, this would be an unlicensed and unauthorized device illegally using FCC controlled frequencies.You would still go to jail or be banned from using computers.

Re:Build your own router

[RavenLrD20k]

How do you figure? The wireless card would have its own licensed firmware operating the radio and thus be under the restrictions enforced...but the rest of the box would be managed by the general purpose operating system, which the FCC wouldn't be able to regulate under this rule. The GPOS would then manage what network traffic comes off and goes to the wireless card, but not handle the management of the card directly.

Re:Build your own router

[Darinbob]

The components themselves are licensed and have passed FCC tests. The system will not be changing any operating parameters; it will keep the same frequencies, channel spacings and separations, power limits, etc. All the end user is doing is specifying how the device is being used.

Re:Build your own router

[radarskiy]

"The system will not be changing any operating parameters;"

No, they really can put parameters like that in the firmware, in order to use the same hardware in geos with different requirements.

Remember when Intel made modems for about five minutes? They didn't make modem because they cared about selling modems, they cared about selling flash memory. They made a reference platform that used common hardware with country-specific parameters in the firmware and shopped it to every telephony body on the planet to convince them to certify the hardware + firmware combination. Then they go out of the modem business and went back to just selling flash memory for to hold firmware.

Re:Build your own router

[AmiMoJo]

Even if the wifi radio's firmware is fixed, it can still be made to do things that are illegal or anti-social.

Different countries have different wifi channel availability. I don't know what the US does, but I'm pretty sure it doesn't support channel 14 (Japan only?) for example. Does it support channel 13 even? The radio needs to, unless the FCC wants special US-only versions of the firmware with that feature permanently disabled. Otherwise the router can just tell it "you are in Japan, use channel 14".

There seems to be a desire to regulate 5GHz devices much more tightly than 2.4GHz ones as well. That makes sense - 2.4GHz if fucked because there are so many crappy devices with the power turned up to 11, using as many channels as they can grab simultaneously and generally being dicks to their neighbours in order to benefit themselves. No manufacturer will voluntarily slow their equipment down or reduce range just to place nice with the competition.

So 5GHz devices have more rules to follow, but it's too much for the firmware of low cost radios to handle. A key cost reduction technique is to offload work to the router's CPU, much like the WinModems of yesteryear. That means the router's firmware can break the rules unless locked down.

Re:Build your own router

[RavenLrD20k]

Are we discussing the same thing? A wifi card that operates on its own firmware and is essentially a SoC that's installed in an expansion slot on a system board that's functioning as the router would not necessarily be able to be illegally configured by the greater system. The firmware in the card would manage how the radio operates and the greater Router Operating System(ROS) would only be pushing data to be transmitted to the WiFi card, and pulling data received from the WiFi card. The card firmware would be the one building the packets and sending it over the airwaves.

For management of the wireless interface as to what Channel it operates on, what wireless security protocol it needs to use, etc, it can have an API that will tell the greater ROS what values it would expect and any configuration passed to it by the greater ROS would be verified to ensure that legal values were indeed passed to it and once validated the wireless card firmware would change the corresponding values as requested. For your example of the router telling the wireless card that "you are in Japan, use channel 14," if the card's firmware was programmed right and designed for a US market, it would just respond with "I'm sorry Dave, I can't do that. I am designed to only operate on US frequencies. If you need to use Japanese frequencies please install Japanese configured hardware." (yeah...that's the communication that components use with eachother, right? /sarcasm)

Finally, separating these components into ROS and Wireless Firmware would also allow the ROS to perform firewalling and data sanitation against unexpected data pulls from the Wireless Firmware... such as if a certain TLA is trying to get data off the network using the wireless radio (5.0GHz...short range, not very useful in surveillance compared to cellular...but...I've got a lot of tinfoil to use up (ever notice that surveillance breaks the i before e rule? weird.)).

Like Tomato?

[CauseBy]

I have a advanced-consumer-level wifi router and I put Tomato on it long ago. Is that what they are talking about? What kind of rule can prevent you from installing software on computers you own? It seems like a violation of something fundamental to me.

Re:Like Tomato?

[gstoddart]

As purely a WAG ... my guess is things which radiate are tested and approved according to some form of standard for interference and the like.

Putting on a new firmware could cause the device to operate outside of those parameters, and would therefore be a non-conforming device.

It's not saying you can't put software on something you own. It's saying putting something onto a device which broadcasts can make changes you didn't expect.

As I said, that's purely a WAG, but it seems like the kind of thing within their mandate.

Re:Like Tomato?

[The+MAZZTer]

Only the RADIO firmware has to be intact. In theory you can still modify whatever else you want. But the fear here is that companies may take the path of least resistance to meet compliance, which may result in all the router software getting locked down, instead of that specific piece of it.

Re:Like Tomato?

Please share what the acronym WAG means. From this coast it means "Wives And Girlfriends", but in this context a wireless term? Thanks from us not in the techie-biz :)

Re:Like Tomato?

[gstoddart]

Well, if we're getting into the business of banning things on the basis of what they could be used for, let's start with rocks

You joke, but from TFA:

Under the rule proposed by the FCC, devices with radios may be required to prevent modifications to firmware. All devices operating in the 5GHz WiFi spectrum will be forced to implement security features to ensure the radios cannot be modified. While prohibiting the modification of transmitters has been a mainstay of FCC regulation for 80 years

In other words, this is something they've been doing for a very long time, and they are suddenly saying you can't modify things which impact transmitters. It's kind of the things the FCC has been doing for decades.

So while TFA says "yarg, teh open source and teh tinkering" ... in part it's the FCC reminding people there are long established rules in place for determining what you can do with a transmitting device.

If the Federal Rock Administration had been regulating rocks for 80 years, then your analogy might be bullshit.

But preventing making changes to a transmitting device is something they've been doing for a long time. It's not like they're newly asserting this authority, they're pointing out they've had it for decades.

Re:Like Tomato?

[gantzm]

Wild Ass Guess.

Re:Like Tomato?

[NatasRevol]

Since when has common sense ever been fundamental? It's not even common.

Re:Like Tomato?

[jimbolauski]

The restrictions are only for the 5GHz band. The reason is 5GHz is supposed to use dynamic frequency selection and transmit power control this is to avoid interfering with weather radar and allow more people to play nice together. They just don't want Dorthy to get hit by a tornado because some one is crapping all over that frequency. They are using a cannon to kill a fly when all they have to do is require that any firmware follow DFS and TPC on 5GHz routers.

Re:Like Tomato?

[ripvlan]

Yes - that was my reading too. The Radio must operated within its class and originally licensed / tested parameters.

However - the basic software of the router can be modified. Those features that boost signal or change it beyond that allowed is what (will need) to be controlled.

My father is a Ham radio operator. His radio must stay within specs - and so must the Power lines outside. If a power line starts transmitting stray signals he calls the power company and they come to repair their equipment.

Those stickers on the back of our devices that state something like "complies with FCC class C and doesn't interfere with other devices" is the law. So this FCC proposal sounds like they are seeing too many modified devices that are operating outside specs.

but I agree - device manufacturer's might lock the whole device down rather than just the radio chips (esp if they are software radios).

Re:Like Tomato?

[Z00L00K]

The primary reason as I see it for this is that the HW manufacturers want it - they want to sell you a new $200 device to get a security update.

Re:Like Tomato?

[execthis]

My understanding what that integrators who build custom firmwares for routers (and other devices with radios) DO NOT generally touch the radio firmware, which is usually obtained from the radio chipset manufacturer. It kind of makes sense that one would not want random people messing with the actual radio firmware for various reasons.

The only thing I've seen is when they may obtain a more recent firmware from the radio manufacturer which the router manufacturer has not include in an update.

Re:Like Tomato?

[execthis]

Exactly!

Re:Like Tomato?

[Darinbob]

There are existing rules for this. You can't modify firmware in order to increase radiated power beyond the limit (on commodity devices anyway). Many radios will not even allow this even if you do rewrite the controlling firmware. The problem is that these rules tend to creep and pretty soon they'll think that other parts of firmware should be left alone, after all changing firmware is something evil that only hackers know how to do... It won't help the issue that the router manufacturers will likely back this up, they never approve of end-user modifications.

Re:Like Tomato?

[thoromyr]

but Money = Power so Money = Work/Money, or Money = (Work)^(1/2) so you have to work four times as hard to make twice as much money... ;)

Re:Like Tomato?

[Obfuscant]

The primary reason as I see it for this is that the HW manufacturers want it - they want to sell you a new $200 device to get a security update.

So you buy an $80 Odroid XU4 and a wireless dongle and make your own wireless router with whatever routing software you want on it. The wireless device has the locked down firmware the FCC requires, the rest of the hardware and software is whatever you want it to be.

You could even put a long-range antenna on the wireless and hide the device near a public wifi hotspot ...

Re:Like Tomato?

The summary and the nerd response is to confuse operating system software (ddwrt, tomato) with radio firmware (specialized Thumb instruction set run on a customized microkernel) and claim the feds are banning custom software.

Nice insult with "nerd response". Maybe you should take a look at Attachment 594280 D02 U-NII Device Security v01r02. It's from the FCC and says,

What prevents third parties from loading non-US versions of the software/firmware on the device? Describe in detail how the device is protected from âoeflashingâ and the installation of third-party firmware such as DD-WRT.

So, the FCC specifically asks about DD-WRT. You're the confused nerd here.

Re:Like Tomato?

[user32.ExitWindowsEx]

The PDF from the FCC explicitly mentions blocking DD-WRT from being loaded.

Re:Like Tomato?

[IMightB]

Or the NSA is going to require that all manufactures include their backdoors and they don't want you to remove it.

Re:Like Tomato?

[maccodemonkey]

The primary reason as I see it for this is that the HW manufacturers want it - they want to sell you a new $200 device to get a security update.

The counter to this is hardware manufacturers generally hate this because anything they do is subject to FCC approval and approval times, even software updates.

This is why phone OS updates can take time.

Re:Like Tomato?

[reve_etrange]

Actually they are really proposing to ban third party software (Google cache of FCC page for "594280 D02 U-NII Device Security v01r02 - FCC"). For some reason the FCC page itself is redirecting me.

Describe in detail how the device is protected from “flashing” and the installation of third-party firmware such as DD-WRT.

Re:Like Tomato?

[bn557]

To that point, they already do require that any firmware follow DFS and TPC when operating as an intentional radiator on 5ghz devices (and anything licensed for use in those bands without special licensing/regulation exemptions from them). The issue is, them requiring people do that isn't getting them to do it. Rather than run around slapping $10k fines (pulled from a dark area, no clue what the actual number is) on people who have openwrt running on 5ghz with the TX power set to 1000mw(actual value listed for the 802.11AC radio in my device in openwrt right now) with no DFS/TPC (DFS is not available in the wpad-mini daemon it uses by default), they're trying to make it so that people can't run openwrt. I can't speak to dd-wrt, but I'm guessing it's status is similar.

You can look at it 2 ways: 1, they don't want to potentially ruin a bunch of peoples lives or 2, they don't want to deal with it and are making it someone elses problem. Maybe it's #1 and #2 was the solution they came up with, I don't know, I wasn't on the committee that wrote it.

The unfortunate downside to this is, likely, this will also apply to any cell phone with 5ghz, any laptop/desktop with 5ghz, and a myriad of other devices. The barrier to entry to increasing the TX power on laptops is likely much MUCH lower than getting openwrt onto a router. I remember the old madwifi era windows driver for 802.11g atheros hardware you just had to go to device properties and set the max TX power to whatever you wanted. Later, you could just change that value from the default and edit a registry key.

My belief is the 'correct' answer is to require whatever part of the system handles this to be signed. This works well in cell phones already (the baseband/modem requires that certain parts of the 'radio' firmware partition (it's just a fast 16 image) be signed by the manufacturer or the radio won't turn on). Usually, the signed bit just contains calibration data for the particular RF circuitry, and if you tell it to operate on a band it's calibrated for, it just doesn't do anything. Applying this to routers will allow manufacturers the option of using cheap SOCs like they do now, and have to deal with signing the whole firmware, or have the option of using Fullmac hardware (like they pretty much have to anyways with 802.11ac) and then they can pass the 'signing and securing' buck to the RF manufacturers.

I'm wholly in support of their goal, but not their methodology. With the ever increasing amount of RF enabled devices, we're becoming more and more susceptible to bad neighbors ruining the party. The only upside to the potential to this being passed is, any of your neighbors who are operating their hardware outside it's rated spec will have a hard time when the device eventually cooks itself(if you look at 'high power' 250/500mw wifi cards, they all have great big heat shields on them that get burn you hot when they're operating at high power. The little SOC chip doesn't have that, so running it out of spec shortens it's life).

Re:Like Tomato?

[AmiMoJo]

What we need is a law that requires companies to provide security fixes for products for at least, say, 10 years. Or alternatively, they can stop providing updates but must then give you a hefty discount off a new model.

It would like like similar laws requiring spare parts to be available for a reasonable period of time.

Re:Like Tomato?

[bluefoxlucid]

Well that's annoying. I can see why they'd control the radio hardware firmware itself (you can make it use a full range of frequencies and thus violate FCC regulations readily), but not the software.

Re:Like Tomato?

[Ares]

The problem is that argument doesn't hold water. If the hardware manufacturers wanted it, there has never been anything stopping them from requiring firmware signed by them. It never stopped Tivo.

Re:Like Tomato?

[Holi]

Then go after those who are out of compliance. The laws and rules already exist for that.

Re:Apple can't: Hackers will !

[BoRegardless]

Guaranteed.

Phones?

[GSMacLean]

My phone can act as a WiFi router. Does that mean no more firmware updates allowed for my phone?

Re:Phones?

[Megane]

It's not "firmware updates" that's the problem, it's unauthorized firmware updates, as in not signed by the manufacturer, etc. So your carrier won't upgrade you past Jelly Bean, fuck you, no CyanogenMod. Although it seems the FCC is primarily going after routers with 5GHz WiFi right now, so no DD-WRT or Tomato to replace the manufacturer firmware, no matter how many security holes it had.

Re:Phones?

It's not "firmware updates" that's the problem, it's unauthorized firmware updates, as in not signed by the manufacturer, etc

In the words of the Prophet, "fuck that noise." It's an authorized firmware update. I , the lawful owner of this hardware, authorized it. Pencil-dick bureaucrats and corporate pigopolists have no say in the matter.

Ow my reading comprehension

Parsing legalese tends to cause me physical pain, but I decided to check the actual text rather than accept the summary.

So, here's the deal, any radio transmitter physically capable of operating in certain controlled bands has some complex and moderately convoluted limits applied to parts of those bands. This is about keeping those bands operating in the ways the FCC has approved. IFF your preferred Open Source software were to include those restrictions in its default behavior list, they'll be fine. If you use such a re-written wifi controller with the proper default behavior list, you'll be fine. If you remove one of the safeguards and start broadcasting a jammer signal on police radio frequencies, you'll be very far from fine.

Re:Ow my reading comprehension

[grim4593]

If the act of operating outside of normal bands is already illegal than how does making a law with more restrictions to an already illegal act provide any extra law enforcement ability?
Has there been a case where someone doing something illegal got off the hook for violating FCC limits because they were using a custom firmware solution and claimed ignorance?
Is this new law going to help reduce Wi-Fi congestion by a large enough magnitude that it justifies the restrictions of everyone in the market?

Re:Ow my reading comprehension

[NatasRevol]

So phones are included? cyanogen/jailbreaking to be criminal now?

Re:Ow my reading comprehension

[mattventura]

Now think about how wifi equipment manufacturers are going to actually enforce this. Are they going to check if the firmware you're trying to load follows the rules? No, because they can't magically do that. They're just going to only allow you to update to a manufacturer-signed firmware.

Re:Ow my reading comprehension

[Obfuscant]

If the act of operating outside of normal bands is already illegal than how does making a law with more restrictions to an already illegal act provide any extra law enforcement ability?

It doesn't. But it does prevent easy violations, whether accidental ("oops, I shouldn't have commented out that channel number test") or deliberate ("fuck you, it's my radio, I'm using one of those illegal channels") or malicious ("if I modify this code, I can interfere with licensed users of other services...").

It's like the laws that prohibit radio dealers from providing field programmable radios (47CFR 90.203 (e)) to their customers. It's already against the law for unlicensed use of certain frequencies, and 90.203 doesn't allow for "extra law enforcement ability", it just makes it harder for the violation to happen in the first place.

Re:Ow my reading comprehension

[reve_etrange]

So did you miss this part?

describe in detail how the device is protected from “flashing” and the installation of third-party firmware such as DD-WRT

Translation

We don't want you to be able to overwrite our back doors.

Umm... FCC SamKnows project uses hacked firmware!

[macraig]

Isn't this delicious irony? The FCC's own "SamKnows" broadband survey project uses Netgear routers with modified firmware so that they can "phone home" the benchmark data collected. This rule would invalidate their own survey project unless they hypocritically exclude it from the rule! "YOU can't modify the firmware of routers you own, but it's okay if WE do it."

(I know about this hacked firmware because I'm a project participant and have one of the hacked routers.)

This affects almost everybody

[Trax3001BBS]

I use different firmware on my router, seeing as it's also has 2.4 and 5Ghz WiFi incorporated this would block my abilities to upgrade. This may be a duh statement but only after thinking a bit more on the subject, did I feel the pain.

just more rules from Fed.gov

[Indy1]

That I'll happily ignore.

Re:just more rules from Fed.gov

[Chris+Mattern]

And if you can't get firmware upgrades from any legitmate source because that sort of thing is illegal now, what then?

Re:just more rules from Fed.gov

[chipschap]

Remember, when firmware mods are criminalized, only criminals will have firmware mods. Or however that phrase goes.

What a great opportunity for vendors to bake in spyware, adware, who knows what. Nah, they'd never do that, right?

Re:just more rules from Fed.gov

[JustAnotherOldGuy]

That I'll happily ignore.

Exactly...if we spent all of our time trying to comply with every Federal regulation and law, we'd never have time to set foot outside our own homes.

This is just another batch of far-reaching laws that will be totally ignored...until they need to screw over someone in particular that they can't get by any other means. Then suddenly, "Oh look, you've violated Firmware Integrity Law #25342.11z, that'll be $10,000 and 5 years in jail."

Re:just more rules from Fed.gov

[CCarrot]

What a great opportunity for vendors to bake in spyware, adware, who knows what. Nah, they'd never do that, right?

No, never .

Re:just more rules from Fed.gov

[Holi]

When your router requires firmware to be signed by the manufacturer they probably won't be installing any 3rd party code.

Just remember

[diamondmagic]

At least this has something to do with electromagnetic spectrum, but only tangentially: They're still claiming the ability to rule over hardware and software, as opposed to merely effects that are detectable over the air.

Re:Umm... FCC SamKnows project uses hacked firmwar

[Fire_Wraith]

This sounds like the perfect sort of thing to include in a comment to them, so they know just how bad of an idea making the rule change would be. I encourage you to submit it, if you haven't already.

they don't ban installation of open source

[YesIAmAScript]

It simply requires the hardware to be designed such that if you install open source, you cannot modify the radio to use frequency bands and powers that it is not supposed to use.

And this is easy to do. Just put in settings to limit power and lock out bands and make those settings irreversible until a full system reset. Then make the bootloader set those settings before running the installed OS.

Then the OS can be open source.

It would be absolutely fantastic if people would be rational about tech news. Tech people/netizens are starting to sound like my grandfather now. Every change is something to be feared. OBAMA IS GOING TO TAKE YOUR GUNS! The people running the FCC are people, just like you. They aren't demons or out to get you. Try to work with other people you haven't met instead of exhibiting xenophobia.

Re:they don't ban installation of open source

[ItsJustAPseudonym]

The FSF seems to be taking this seriously.

Re:they don't ban installation of open source

[dywolf]

OBAMA IS GOING TO TAKE YOUR GUNS!

Just you wait!
It'll happen soon!
Any day now! /s

Re:they don't ban installation of open source

[Ramze]

Don't forget the FCC doesn't set the rules for the rest of the world's Wi-Fi. Many of the designs are sold overseas and the OS is what locks out improper use of the radio by region. Take 802.11G channels for instance -- USA allows channels 1 - 11. Most of the rest of the world allows channels 1-13. The USA technically allows channels 12 and 13 on low-power devices, but all Wi-Fi routers in the US restrict those just to be sure they don't overlap Channel 14 -- b/c interfering with CH 14 is strictly forbidden. Some countries like Japan even allow channel 14 for 802.11B only.

802.11 N and AC are much more complicated. Different regions and countries allowed different parts of the spectrum -- which vary widely.

You're not going to get a global manufacturer to bake in all those different settings and effectively lock their hardware to a region. They're going to mass produce the hardware, then load a region-specific firmware "just in time" as they're ordered by region. For your solution to work, there would have to be a separate firmware control just for the radio that could be loaded separately from the OS -- one that was write once, read only after (or at least required certificates for future updates from the manufacturer only). Why would a manufacturer add that complexity and cost?

Come to think of it, you'd likely need 2 firmware chips and 2 processors... A main processor for the OS, a firmware for the OS... and then a firmware and radio-CPU just to access and control the radio and send I/O to the main CPU. Otherwise, your OS firmware can route around any other firmware and access the radio directly and select out-of-FCC-rule bands and power levels.

Your solution is not simple. It's like adding a BIOS chip and software to a simple system-on-a-chip board. That's never going to happen when they're pinching pennies to get the cheapest board for the router. Seriously... look at what happened to the linksys routers -- every new model had a smaller board and was dumber than the one prior (even reduced the RAM over time, too).

Re:they don't ban installation of open source

[ic3m4n1]

It may not be FCCs intention but perhaps language they are using to define new rules is open to different interpretation than original intentions which is what Open Source parties are trying to highlight.

Re:they don't ban installation of open source

[bored_engineer]

I don't think that this does what you think it does. The FCC, in an advisory document, specifically mentions the DD-WRT OS. From Software Security Requirements for U-NII Devices:

What prevents third parties from loading non-US versions of the software/firmware on the device? Describe in detail how the device is protected from “flashing” and the installation of third-party firmware such as DD-WRT.

The FCC is trying, with this rule, to prevent any modification to future devices. From the same document:

An applicant must describe the overall security measures and systems that ensure that:

• 1. only properly authenticated software is loaded and operating the device; and
• 2. the device is not easily modified to operate with RF parameters outside of the authorization.

The description of the software must address the following questions in the operational description for the device and clearly demonstrate how the device meets the security requirement.

The same document also suggests that there be strong security between the regulated device and the manufacturer's website to verify installed software. How does this not eliminate the use of Tomato or OpenWRT? If you expect to use one of the alternate firmware on future devices, this proposed rule will absolutely affect your ability to do so.

Re:they don't ban installation of open source

[organgtool]

It would be absolutely fantastic if people would be rational about tech news.

With the amount of fearmongering that goes on in the media, it would be great if people would be rational about ALL news. With that said, I can't help but think that in some cases the reason that the proposed regulation isn't as bad as people fear is because the fearful raise some reasonable objections and the government scales back the scope of the new regulations. Therefore, a little paranoia (and more importantly, voicing your concern to the government) can be good at limiting the scope of proposed regulations.

Re:they don't ban installation of open source

[crtreece]

It simply requires the hardware to be designed such that if you install open source, you cannot modify the radio to use frequency bands and powers that it is not supposed to use. And this is easy to do. Just put in settings to limit power and lock out bands and make those settings irreversible until a full system reset. Then make the bootloader set those settings before running the installed OS. Then the OS can be open source.

From the FCC docs:

An applicant must describe the overall security measures and systems that ensure that:

1. only properly authenticated software is loaded and operating the device; and
2. the device is not easily modified to operate with RF parameters outside of the authorization.

Add that all up, and the easiest, cheapest way for device manufacturers to comply would be by implementing a cryptographically signed firmware image, and checks at boot time to make sure the image has the correct signature. Even cheaper, and potentially more profitable for the manufacturer, would be to burn the firmware into ROM, and have no upgrade ability. Then they could just sell you a new router instead of doing profit killing work like patching bugs.

Re:they don't ban installation of open source

It simply requires the hardware to be designed such that if you install open source, you cannot modify the radio to use frequency bands and powers that it is not supposed to use.

That's not what it says. Instead, the FCC expects manufacturers to prevent 3rd party software, including open source, from being loaded. See below.

FCC: Describe in detail how the device is protected from “flashing” and the installation of third-party firmware such as DD-WRT

And this is easy to do.

Whether it's easy to comply is largely irrelevant. Whether it's practical or economical for manufacturers to comply is what's most important, as that has more bearing on what will actually make it to market.

It would be absolutely fantastic if people would be rational about tech news. Tech people/netizens are starting to sound like my grandfather now. Every change is something to be feared. OBAMA IS GOING TO TAKE YOUR GUNS!

Do you deny that Obama and other liberal Democrats want to take away certain guns, certain magazines, and your freedom to obtain and use guns in general? Do you deny these same people would make all guns illegal for citizens to own if they had the chance? Of course they would. Then again, some may want to keep the issue around for fund raising and getting elected.

It is the government's job to regulate, or take things away if you will. That the government couldn't take away something we should be free to have or that they couldn't make a mistake in drafting regulation is as foolish as it is naive. As you alluded to with your Obama comment, some people and politicians have made a living at it.

What would be more fantastic is if you would take some time to educate yourself and widen your perspective on both the issue at hand and the rich history of government overreach both in this country and others that continues to this day. You don't even realize the freedoms and resulting opportunities and prosperity that have been taken from you. Ignorance is bliss they say. Maybe you should start listening to grandpa, rather than insult him behind his back on Slashdot. Real classy, by the way.

The people running the FCC are people, just like you. They aren't demons or out to get you. Try to work with other people you haven't met instead of exhibiting xenophobia.

You are right to a point. People in government are just people like you and me. Some are good, some are bad, and all are flawed to varying degrees (no one is perfect). Don't forget, people are prone to mistake, whether they work for government or not.

Now that the similarities have been discussed, let's recognize the big difference -- those in government have the power to take away our freedoms. It's one thing for someone working at a private business to make a mistake -- maybe that single business will go bankrupt. It's quite another for the government to make a mistake -- a whole industry or product line could be destroyed or a freedom once enjoyed by many taken away. In this case, our freedom to purchase routers that allow open source software to be run on them and the freedom to more fully control our routers is what's at stake here.

While some may be wrong to assume all in government are bad, others are just as wrong to assume all in government are good and without flaw (politicians you disagree with aside). Your comments represent the latter with no regard for the possibility that the government could be wrong, here, and could be overreaching.

Having said that, there's little question they are wrong, as the government need not bar us from using whatever software we like on our routers to regulate the air waves. They can still regulate the airwaves without forcing potentially insecure, closed-source software on us. It's yet another unnecessary overreach that will only serve to destroy yet another freedom.

Re:they don't ban installation of open source

[jonwil]

My Nokia N900 has a separate firmware blob for the WiFi chip (no idea if the wireless radio enforces any digital signature on that) and it figures out what regional settings (FCC etc) to use by obtaining the current country from the cellular network or if it cant do that, reading it directly from a write-once part of the file system.

I have seen routers out there that have separate chips to do the WiFi stuff as well. I see no reason you couldn't lock down the firmware for these separate CPUs (so they will only run digitally signed firmware, just like they do now for the CPUs used for cellular radios) and have a write-once memory area somewhere that chip can see where the correct region information is written at manufacture time. Physically impossible for the main CPU to talk to the radio in those cases since the radio/RF part is only connected to whatever CPU is running the WiFi firmware and not to the main CPU.

Re:they don't ban installation of open source

[Areyoukiddingme]

It would be absolutely fantastic if people would be rational about tech news. Tech people/netizens are starting to sound like my grandfather now. Every change is something to be feared.

It ain't paranoia if they really are out to get you.

Considering DD-WRT was mentioned by name as something that would explicitly be banned, yes, this is something to be feared. If the FCC was doing their job, the job of regulating transmitters in order to preserve the utility of the commons that is the electromagnetic spectrum, the job that someone else pointed out they've been doing for 80 years, then there would be no problem. But when the proposed rule is worded primarily for the purpose of enriching a tiny handful of corporations, and only tangentially justified by their actual mandate, we're going to start sounding a bit shrill about it.

Tired of how shrill Slashdot has become lately? Blame the problem. Regulatory capture, and ongoing attempts such as this to extend it. This is the new normal. So of course we're going to become suspicious of every change, and of course we're going to be shrill about every change, because even when it's not such a blatant attempt at profiteering as this one is, Occam's Razor leads us to the conclusion that it's just a more subtle attempt at profiteering at our expense that we haven't figured out yet. The expense not only of our pocketbooks, but also our freedom, specifically the freedom to do whatever the hell we want with our possessions.[1]

The people running the FCC are people, but they are not just like me. Not in the least like me. The people running the FCC tell 300 million people what they can and can not do. I don't. They are not remotely like me. Therefore if I want to be suspicious of their motives, I damn well can be. Judging by past behavior, I damn well should be.

------

[1] And before the pedantic among us 'correct' me and tell me I don't have the freedom to do whatever the hell I want with my possessions, it was a rhetorical device. The previous paragraph acknowledging the problem of preserving the commons was your clue. I am perfectly well aware that this is a worthy and laudable goal, and if the number of cases of WiFi AP firmware modification resulting in out-of-spec radio performance that interferes with other uses of the spectrum ever rises above zero, the FCC might have a good reason to issue a new rule. But it still wouldn't be this rule.

Re:they don't ban installation of open source

[bn557]

Only if you count nearly every wifi card, graphics card, or cellular radio used in laptops and/or desktops and/or cell phones(or anything that uses a DSP/ASIC of some sort) as a blackbox(I do). After you exclude that list, I'm sure you'll have a massive, massive, list of available options left that are truly 100% blackbox free FOSS experience. Oh yeah, forget that BIOS too.

Linux, Windows, Mac OS, FreeBSD, and other OSes are just user interfaces to a black box full of black boxes. Every device you have to load a firmware to, or give microcode is basically a black box that the OS uses. If you don't have to load firmware to it, and it does a non-trivial task, it probably has the firmware built into it. The only thing the FOSS people want is to know how to give it it's firmware, and tell it to do it's job.

(This is a tongue in cheek reply to the parent, and clarification for the grandparent)

Re:This was how smartphone unlocking was banned

[Trax3001BBS]

I imagine a similar revolt will take place after the new rules take effect.

Actually as hard as it may seem, the Net Neutrality act (FCC) made it easier to root, not to unlock a phone.

Unlocking a phone is now pretty much a gimme, I use a Trac phone and just read of the deal they made with the FCC, and a new software update to make unlocking possible.

Good luck enforcing that, FCC

[kheldan]

And how exactly are they going to enforce such a law? Any method manufacturers use to lock out 3rd party firmware can and will be circumvented. They're wasting time and taxpayer money on nonsense like this.

Re:Good luck enforcing that, FCC

Actually, no.

Almost every embedded SoC - from the most expensive Altera down to Atmel's pinhead-sized ATTiny-13 BGA package - comes with security fuses for exactly this purpose. By writing 1 to fuse bits in the code, upon upload it can be made to physically destroy the debug interface, the flash memory's writeability, and/or a few other things used by the in-house hackers (engineers) to develop a product before rendering it "final" when it's shipped out to the hostile world. Yes, our beloved hobbyist micros can do this too.

Believe it or not, SoC designers have in fact thought of how to keep people from altering and expropriating the code that's stored on microcontrollers before. If you want to prevent somebody with less than a full-on chemistry, nanolithography and electron microcroscopy setup from even *reading* it, it's not hard.

Of course, most non-trivial systems don't go this far precisely because it also makes updates to the main code impossible. So they design a bootloader that IS locked down this way, and which is trusted to check the main code before running it, which is the good-on-paper theory behind Trusted Computing.

Re:Good luck enforcing that, FCC

[bored_engineer]

At worst, hardware manufacturers will make the WiFi portion of the device untouchable from the rest of the firmware, or perhaps requiring signed binary firmware for the WiFi transmitter.

It would be a nice compromise position, but the one of the FCC Documents, in describing the reporting requirements, specifically asks how the device prevents loading "third-party firmware, such as DD-WRT."

Re: I thought they only had our best interests in

The corporate pigs are still evil. If you can't see that you're either not paying attention or you watch Fox News.

Re:Umm... FCC SamKnows project uses hacked firmwar

[macraig]

I was already trying, but their stupid form is heavily scripted in a moronic way and won't allow pasting anything into the fields: if you paste anything - and I have a browser extension that lets me paste frequently used text - then it erroneously claims that the field is empty and won't allow you to proceed. Some Web coders need to be taken out back and shot in the head.

Licencing, and the new "SDR"

[bradgoodman]

I can see the logic here - the FCC regulates the airwaves be licencing the devices on them (*OR* licencing the operators, in the case of ham radio). The rule is, devices must be approved an may not be modified. (Those withe ham licences can build and/or modify, because THEY are required to force the rules, whereas with a licensed device the device itself must "enforce the rules").

I don't think the FCC is arguing that they don't want people's own distribution running along side a WiFi device, but rather, as WiFi chipsets become more "Software Defined" - rewriting the code in them is essentially the same as "modifying the radio".

The best analogy are the RTL HDTV over-the-air capture dongles for software defined radios. Guess what? They're generic radios which only do TV decoding via software - so people write NEW code and suddenly you can use them to do (and I dare say ANYTHING) that any sort of radio receiver could ever be made to do.

This is okay (and legal) with a receiver - they just don't want to to happen with transmitters. What would happen if anyone could do anything they want on the airwaves?

The counterargument is going to be "but they're not cracking down on MODIFYING the radio - just leaving the radio OPEN to being modified". This is expressly prohibited (and has been for a very long time) by the FCC - long before software-defined stuff. Lots of devices like Family-Band radios (and other licensed transmitters) are REQUIRED to be manufactured with things like "non-replaceable antennas" - which make user-modifications more difficult, because they are prohibited (unless done by a [ham] licensed operator).

Consumer Private Key

[Immerial]

I wish someone would make this stuff to have a consumer private key... say like a USB drive that is plugged in the router when you get it. Once you set it up, you pull the USB key. Anytime that the router needs to be updated, you insert your USB key, do you updates, and then pull it when you are done. Ta-dah! Private key to keep it from being compromised and owner has control. You could also add some consumer dummy protection: once it is setup, require the key to be pulled to operate (keeps people from being lazy and leaving the router unlocked), prompt people for the key only when updating.

Re: Consumer Private Key

Or just have a physical switch connected to write-enable on the memory. One way, and you can modify, but not transmit. The other, you can transmit but not modify.

Re:Consumer Private Key

[MobyDisk]

To update the firmware, you should be required to insert a Windows '95 floppy boot disk containing firmware.bin and flash.com, then press the reset button.

Seriously though: wouldn't a simple switch be sufficient?

Re:Consumer Private Key

[Grishnakh]

And what would your USB-drive private key solution solve?

You're completely missing the point. The problem isn't "hackers" remotely logging into routers and doing nefarious things; what they want to prevent is YOU modifying your own router.

Smartphones...

[bigpat]

This appears to apply to all software installed on something that is licensed by the FCC... so what about third party software on smartphones? This proposed rule seems to give the FCC certification holder all the power to decide what is or is not legally allowed on their devices.

Stop the panic! The headline is click bait.

[Bill_the_Engineer]

The FCC regs linked in the summary above:

An applicant must describe the overall security measures and systems that ensure that:

1. only properly authenticated software is loaded and operating the device; and

2. the device is not easily modified to operate with RF parameters outside of the authorization. The description of the software must address the following questions in the operational description for the device and clearly demonstrate how the device meets the security requirements. While the Commission did not adopt any specific standards, it is suggested that the manufacturers may consider applying existing industry standards for strong security and authentication.

(Usual IANAL applies)

The FCC is only interested in and authorized to prevent RF interference. Basically the FCC wants the manufacturers to put safeguards in place that prevents the device from operating out of its authorized bands and/or cause willful interference to other devices. It didn't ban all firmware modifications. The manufacturer needs to make the radio not operate out of its approved allocations and make a method to ensure that the firmware is modified by authorized individuals using standard authentication methods.

You are free to continue to panic if you desire.

Re:Stop the panic! The headline is click bait.

[Jiro]

Read again. The rules in your own quote require that "the device is not easily modified to operate with RF parameters outside of the authorization". That doesn't prohibit modifying the device with such parameters, this prohibits having devices that are even able to be modified, and a device that is merely able to be modified, period, is able to be modified with such parameters.

Furthermore, #1 says they must ensure that only properly authenticated software is loaded. It doesn't say "they have to ensure properly authenticated software if it affects RF parameters, but the rest of the software can be unauthenticated". And even if it could be interpreted that way, the easiest way to prevent unauthenticated software from modifying RF parameters is by preventing unauthorized software, period. Sure, in theory, the manufacturers can split the software up into a RF portion and a non-RF portion and let you modify the non-RF portion, but we both know that that's not going to happen.

Re:Stop the panic! The headline is click bait.

[Bill_the_Engineer]

That doesn't prohibit modifying the device with such parameters, this prohibits having devices that are even able to be modified, and a device that is merely able to be modified, period, is able to be modified with such parameters.

That actual term is "properly authenticated software". That doesn't mean the firmware can't be modified. It means a method must exist that authenticate the firmware executed on the device. You are implying that it means no modification is allowed, but the FCC purposely waved their hands on the details of who or how the firmware can be authenticated with "the manufacturers may consider applying existing industry standards for strong security and authentication."

So...now what?

[JustAnotherOldGuy]

So...is the FCC's Firmware Compliance Strike Team is going to kick down my door, shoot my dog, and audit my router's firmware?

Ha ha, the joke is on them- I don't even have a dog!

This is a real threat

[Wiseleo]

The PDF explicitly mentions DD-WRT as an example of what should not be permitted:

Third-Party Access
Control
1. Explain if any third parties have the capability to operate a US sold device on any
other regulatory domain, frequencies, or in any manner that is in violation of the
certification.
2. What prevents third parties from loading non-US versions of the
software/firmware on the device? Describe in detail how the device is protected
from “flashing” and the installation of third-party firmware such as DD-WRT.

Wrote a comment.

Re:This is a real threat

[MobyDisk]

Gah! I posted so I can't mod you up! This is reeeaallly important!
It's the second attachment in the FCC link in the summary. Page 2.

What prevents third parties from loading non-US versions of the software/firmware on the device? Describe in detail how the device is protected
from “flashing” and the installation of third-party firmware such as DD-WRT.

I work for a fortune 500 company and we use DD-WRT on the routers in our labs. They will definitely hear from me!

Re:This is a real threat

[Frederic54]

It's because it's easy to install a new firmware (ddwrt or tomato), set your country as JP and use channel 13 for instance at full power, they want to prevent things like this.
5GHz frequencies you are allowed to TX is very complicated, just check the table on https://en.wikipedia.org/wiki/...

Re:This is a real threat

[Darinbob]

Many routers and devices ship by default with support for many different country configurations. The end user can then configure which country it is for. This may not be so common with home based devices but we definitely ship products that can be configured for the wrong country by the customer.

Re:This is a real threat

[Areyoukiddingme]

It's because it's easy to install a new firmware (ddwrt or tomato), set your country as JP and use channel 13 for instance at full power...

A poor example. The FCC clarified some time ago that they didn't intend to restrict the usage of channel 13 in the way that current firmwares do (usually by locking it out entirely).

If the rule hadn't so obviously been written by Belkin's lawyers as a money grab, we'd be less annoyed with it. As it is, the reason you cite sounds more like an excuse than a reasonable (and legal) justification.

Separate the functions of routing and wireless

[spire3661]

This is easily solved by using a separate router and Wifi AP.

Re:Umm... FCC SamKnows project uses hacked firmwar

[ic3m4n1]

"... it's okay if WE do it."

That would be authorized party list which they are certifying during approval so it should include FCC by default I guess.

Re:Umm... FCC SamKnows project uses hacked firmwar

[Qzukk]

and then edited

My guess is that they've got some onkey* event handler checking to see if you typed something in the blank, instead of using oninput which also fires for pasting.

Re:Totally enforceable!

[TWX]

i really wish they'd get around to whacking the whackers around here. I'm getting tired of hams driving retired cop cars with aftermarket lightbars and "REACT" painted on the doors with a somewhat official-looking seal and a plastic badge they bought at the security guard outfitter supply thinking they're somehow entitled to do more than use the radio.

Hypocrites!

[ionz]

The whole FCC Measuring Broadband America is based of a modified OpenWRT based routers maintained by SamKnows!

Would this have any impact on SDR?

[ScienceofSpock]

I have been curious about SDR (Software Defined Radio) for a few weeks now, but haven't had time to really look into it. Would this rule have any impact on SDR?

NSA enabled... permanently

[erapert]

If this is enacted then that means only router manufacturers would be able/allowed to modify router firmware, right? That means that any security flaws or backdoors will be permanently in place with nothing the end-user can do about it.

Gee-whiz, cui bono?

Stallman was 100% right.

Re:NSA enabled... permanently

[flopsquad]

I really don't think the NSA gives two shits about consumer routers when they pretty much "own" the internet backbone providers.

This. Although I get the impression the NSA is a belt-and-suspenders kind of organization that would prefer to own you seven ways from Sunday rather than just six.

Losing their (conjectured) router backdoors might get a shrug from them, or possibly even a "Shit, now Americans can't overwrite the Chinese backdoors that are baked in at the factory."

Nope.FCC application form: "protected from dd-wrt"

[raymorris]

That would be reasonable, perhaps, but it's not the approach the FCC is taking. The FCC instructions (linked below) require all applicants (manufacturers) to:

      Describe in detail how the device is protected
from âoeflashingâ
      and the installation of third-party firmware such as DD-WRT.

So indeed the rule they have proposed is to explicitly require that manufacturers prevent the installation of DD-WRT.

https://apps.fcc.gov/kdb/GetAt...

Re:For back doors and transmission power.

[lowen]

The legislative boat already sailed, in 1934, with the passage of the Communications Act of 1934, that both created the FCC and specifically authorized it to craft regulations to do exactly what they are doing with this without further action by Congress. Congress has further amended the Communications Act over the years, one of the largest amendments being in 1996. Congress, by power vested in our elected representatives and with the approval of the President (in 1934, that was of course FDR; in 1996, it would have been Clinton) explicitly delegated regulatory authority to the FCC to do this. And thus Title 47 of the Code of Federal Regulations was born.

Don't use a Wifi Router FFS!

[TechyImmigrant]

The people who write RF management code are not security experts.
People who write router code may be.

But the composition of the two into one box is guaranteed to lead to unintended consequences.

Get APs to put on your wired network and a router to connect to the outside world. Putting both in one box has been an ongoing security disaster for a decade.

Re:Totally enforceable!

The analogy holds, but wasn't detailed enough. Imagine if the FCC said you had to use Windows 10 to use a wifi card.

Re:Totally enforceable!

[HornWumpus]

IF uncle charlie has actually started earning his money I'll be very happy.

I was reduced to putting a pin through a dudes coax. He was running a 1kW linear on the cheapest tweaked for power CB base station he could get for free off craigslist. We could not only hear him on the TV, Radio and phone but on the god damn microwave oven.

Repeated complaints to the FCC were ignored and I was forced to fix it myself.

I thought radio firmwares aren't usually altered

[execthis]

As far as I understand, integrators who build custom firmwares for wifi routers do not alter the actual radio firmware, which they usually obtain from the manufacturer and integrate into their builds.

There is good reason why you would not want random people hacking the radio firmware.

Re:Totally enforceable!

[clonehappy]

Translation: "I don't like a certain group of people. Even though they aren't breaking any laws, mother government MAKE THEM STOP!! WAAHHHHH MOMMY!!!!"

While I certainly agree that those guys are a bunch of jaggers, they're also mostly harmless losers who don't hurt anything. If you can't tell the difference between those jokers and a real cop, get out of the gene pool. You know what I hate, though, for real? Assholes who want the government to "whack" people who are not breaking the law but merely mildly annoying to them.

Life Tip: You can "think" you're entitled to do whatever you want. Plenty of people live in dreamland. Actually acting upon it is where the whacking should start. If a guy wants to drive around in an old cop car and think he's something other than a washed up loser from a trailer park, that's his opinion. It's a free country. If he tries to tell me what to do, then we'll see who's right and who's wrong.

Plus, many hams aren't this kind of asshole and are valuable assets during times of emergency.

Re:Umm... FCC SamKnows project uses hacked firmwar

[thoromyr]

just paste, hit a key, then delete so that keystrokes are registered.

Wording is everything

[alzoron]

If it's actually a ban against modifying the firmware does that prohibit outright replacing the firmware altogether?

Extended comment period

[craighansen]

The comment period is actually open until sometime in October, but promptly entering your comments is more likely to be effective (call now before you forget). The FCC has responded to mass commenting before on the net neutrality issue - it's time to do it again before the FCC lays us all open to having wireless devices with massive security failures that we can't fix ourselves.

Re:Umm... FCC SamKnows project uses hacked firmwar

[macraig]

First thing I tried. Didn't work as expected.

Re:Nope.FCC application form: "protected from dd-w

[tlhIngan]

That would be reasonable, perhaps, but it's not the approach the FCC is taking. The FCC instructions (linked below) require all applicants (manufacturers) to:

            Describe in detail how the device is protected
from ÃoeflashingÃ
              and the installation of third-party firmware such as DD-WRT.

So indeed the rule they have proposed is to explicitly require that manufacturers prevent the installation of DD-WRT.

Perhaps it's an example showing that DD-WRT does not do any enforcement of radio transmissions? I mean, DD-WRT will happily let you use illegal WiFi channels (e.g., 13, which is Japan only), so they want to enforce that hey, if your unit is sold in North America, it only uses 1-11 or whatever the complex mess is on the 5GHz band, and no matter what third-party firmware you install, that is the plan in force.

The problem being that DD-WRT and the like have been pretty much letting anyone use anything, which is what the FCC is going after.

My comment to the FCC regarding several security

[raymorris]

I submitted a comment to the FCC outlining several significant security concerns regarding the proposed rule.

Based on 18 years of professional experience in network security, in both the private sector and government, the proposed rule causes significant concern for information security posture. There are three primary reasons. The legitimate goals of the FCC could be achieved in an alternate manner which does not cause the same widespread security vulnerabilities, by instead requiring that output power levels and any other critical parameters be limited to legal levels by a separate chip. This approach would be far superior to effectively banning proper security practice for the ENTIRE operating system and all utilities on the device, as the current proposal does.

1

The proposed rule which requires that manufacturers disallow firmware updates (other than signed manufacturer updates, typically provided for only a very short time), makes it much more difficult to prevent incidents such as the $45 million loss at TJX and the Target breach. In both cases, the victim companies were initially targeted because insecure wifi devices were in use. To reduce future occurrences of such breaches, it is imperative to be able to update devices which use wireless networking. Especially when a vulnerability such as Shellshock is discovered, it is imperative that risks be mitigated immediately.

Updates provided by the manufacturer may at first seem to be a possible solution, but are not actually a viable solution for two reasons. Manufacturers generally do not provide long-term updates, updates for devices more than about one-two years old. In many cases, no updates are offered at all to handle issues after the date of sale. It is not reasonable to anticipate that organizations and families will replace their network gear every year or two - firmware updates are needed, including for devices which are a few years old. Perhaps ESPECIALLY for devices which are a few years old.

Secondly, updates from the manufacturer are not a viable solution for more sensitive government and private organizations due to the response time required. In the first 24 hours after the release of Shellshock, thousands of systems were compromised. For many networks, it is critically important to mitigate the threat during this initial time frame. Manufacturer full updates were not available for several days to several months, as we first discussed the best long term solution and that solution propagated downstream from the authors, to the subsystem maintainers, distribution maintainers, OEM repackagers, and finally out to customers after testing at each level. In the meantime, temporary MITIGATIONS were performed on-site by network engineers and security contractors. These vital mitigations which protected sensitive networks in the interim would be illegal and prevented by manufacturer locks under the proposed rule. In simple terms, the proposal makes it illegal to manufacturer equipment which can be _quickly_ protected against new threats to our cyber security.

2

Another reason that the proposed rule is problematic is that the manufacturer default firmware, with all available features designed to be as easily accessible as possible, is not appropriate for any environment in which security is a concern. A central tenet of information security, and security in general, is that the attack surface should be as small as possible - services not needed for a particular installation should not be installed and enabled. The only software which definitely cannot be exploited is software which is not installed or not enabled. Therefore, the most secure firmware tends to be that with as many features _removed_ as possible, with only those items required for the current role installed.

Manufacturer firmware does the exact opposite, for ease-of-use by ordinary consumers. All services which might be of use to any customer are installed, enabled, and wide open for

Re:FCC order explicitly bans DD-WRT from U.S.

[Darinbob]

However the commercial software often unlocks those channels as well, if you configure it to be for a different country. The router maker can't be held liable for this, it's customer error. However the router maker can be required to disallow certain configurations (never exceed a certain radiated power) or arbitrary configurations (let the user pick channel spacing).

No, you don't have to add a bios chip

[YesIAmAScript]

You're wrong.

The parameters can be set by the bootloader and a digitally signed. There is no need to make 3 different chips for 3 different units. Just put the parameters in a payload with the target serial number then digitally sign it.

Then in secure code (either in ROM or loaded from flash by a ROM and checked before running) you load those parameters into the radio before proceeding.

This would add no cost (or trivial at best). All you need is an unchangeable unique ID. Everything else can be in the existing flash storage. It would add some complexity.

Why would a manufacturer do this? Because the FCC would mandate it.

You do not need a separate firmware for the radio, you design the radio so that these values become read-only after set. Then the entire driver can be modifiable (open source) it just can't modify that data.

This can be done relatively simply and for no additional cost. So no, the FCC wouldn't be banning open source, simply changing how the systems which use open source must work. And in a way that is really easy to roll out.

Re:Nope.FCC application form: "protected from dd-w

[jwdb]

I agree with your assessment, but shouldn't the FCC then be going after the radios, not the rest of the board? If the radio is licensed for channels 1-11, it shouldn't be capable of operating on channel 13 at all (also legal in the EU, btw). That would still allow us to flash the firmware without allowing the illegal operation you're talking about.

Essentially, installing DD-WRT should still not let you enable channel 13 in the US, but it should still be possible to install DD-WRT.

Yeah, a separate chip to limit frequency and power

[raymorris]

Indeed. In my long comment I submitted to the FCC, I mentioned that their legitimate purpose could be implemented by a rule requiring a separate chip which limits power and frequency, rather than prohibiting important updates to the OS or utilities.

Re:Nope.FCC application form: "protected from dd-w

[Dorianny]

None of the major manufacturers are happy about people installing third-party firmware on their hardware, or make it easy to do so. It is only possible because of dedicated developers and hobbyists spent countless hours painstakingly reverse-engineering the hardware. All these rules are likely to do is kill the pre-installed third-party-firmware market.

Physcial Switch

[Immerial]

A physical switch would be fine. The USB key has some pros and cons.

Pros: another hurdle on the physical access of device, not just anyone can update it, you could use the key possibly on other devices (PC motherboard/parts, car firmware, etc.), you could make copies of it for people you trust, you could use a USB key with more security (encrypted with fingerprint lock)

Cons: more complicated, someone could steal/copy your key, you could lose your key

Re:Nope.FCC application form: "protected from dd-w

[Obfuscant]

If the radio is licensed for channels 1-11, it shouldn't be capable of operating on channel 13 at all (also legal in the EU, btw). That would still allow us to flash the firmware

You've just moved the problem one level along. The cost of manufacturing a different radio for each regulatory jurisdiction would be prohibitive, so the operational limits will be either set in firmware (in the radio) or, as is very common in amateur radio gear, through jumpers. Others have already pointed out that the right place to lock a router down is in the radio firmware, but what about routers where the radio function is part of the overall router firmware? I.e., the selection of channel is tested in the router firmware before it is passed on to the radio? That reduces costs because the radio firmware doesn't need to have a way of being flashed to different limits, only the main router software (which has to be flashable for updates anyway).

Funny how I posted this story 3 days ago

[Nyder]

Funny how I posted this story 3 days ago and funny now I do not get credit. Same sources, just a little different opening statement.

Ya, fuck you slashdot editors, fucking wankers who get paid to lick each others balls.

Re:Funny how I posted this story 3 days ago

[Nyder]

http://hackaday.com/2015/09/02...

Since there is no reason to post stories to slashdot anymore, here is another link, this one is about saving the wifi from the FCC.

Plus what I posed in the original summary that was not included, seems like it's matters:
The proposed rule only affects devices operating in the U-NII bands; the portion of the spectrum used for 5GHz WiFi, and the proposed rule only affects the radios inside these devices.

Ya, once again. fuck you slashdot editors.

A Geeky Wish

[Immerial]

It's just a geeky wish that we control the devices that we've bought.

But yes... this FCC rule is about taking away control. It looks like too many people have been modding their routers to do illegal things... use foreign frequencies in the USA, changing the broadcast power above what is allowed in the USA, etc. Instead of tracking people down and charging them, which would admittedly be a fool errand, they've proposed some drastic changes to stop the problem. These changes in my opinion do more harm then good and I will be contacting them and my reps. to try and stop this from happening.

The harder solution will be one that router makers will not like... make different routers for different countries. Or more specifically- one for the USA, and one for the rest of the world. The USA ones would be hardware fixed to the max broadcast power, and allowed frequencies for the USA.

Re:A Geeky Wish

[Grishnakh]

No, they have to have different ones for different regions. All the other countries aren't free-for-alls either, they just have different regulations about power and channels.

Re:Totally enforceable!

[agm]

This would only apply to one country anyway. The rest of us wouldn't be affected. Land of the free indeed.

Two different things being discussed

[gnujoshua]

This story and the hackaday story are confusing two different things. The U-NII rules have already been passed and adopted this summer. ' Seperately, there is a new proposal (a Notice of Proposd Rule Making) that the FCC published and is accepting comments on until October 9th. These proposed rules will effect all virtually all computers (laptops, phones, routers, etc) that have software that controls or sets certain parameters on wireless devices like wifi, bluetooth, etc. So for example, if your device could possibly modified so that it spoofs the region code information in the linux kernel so that it will cause the wifi chip to operate as though you were in Japan (and thus in ways not allowed in the US), the propsed rules by the FCC would require that the linux kernel be locked down such that the user can not install their own modifed versions of the kernel. Please join the mailing list and collaborate with us on preparing comments, doing research, and related work on the Save WiFi wiki. You can also email me (jgay AT fsf DOT org) if you don't feel like engaging publicly or if you have any questions.

FCC helping sister agency (NSA)

[David+G+Jr]

With NSA hijacking shipments of routers and installing "special" firmware on them wouldn't it be smart of them to have a fellow agency make a law that would stop you from undoing all their hard work. The NSA didn't go to all the trouble of hijacking that truck so you could install clean firmware. I'm surprised this hasn't been brought up in the comments yet. http://yro.slashdot.org/story/... http://tech.slashdot.org/story...

Re:Totally enforceable!

[adolf]

i really wish they'd get around to whacking the whackers around here. I'm getting tired of hams driving retired cop cars with aftermarket lightbars and "REACT" painted on the doors with a somewhat official-looking seal and a plastic badge they bought at the security guard outfitter supply thinking they're somehow entitled to do more than use the radio.

Those aren't hams, those are nutcases.

Hams are licensed amateur radio operators and are generally very picky about following each FCC rule to the letter and practice the art of long-distance communications using gear running from batteries. When all of our wonderful communications systems fall apart (which happens), hams will (and do!) find a way to reach the outside world for everyone's benefit.

REAC is a group of baffoons trying to make themselves feel important, often with unlicensed CB radios illegally using linear amplifiers, and in my direct experience are an unsavory sort of folk who would be the last people I would accept help from, much less ask. I teach my daughter to stay away from them.

To conflate the two is brutally both disparaging toward hams, and far more respectful toward REAC than they could possibly deserve.

Re:For back doors and transmission power.

[silas_moeckel]

Congress gave up it's legislative powers, they just authorize administrative law and lets the courts decide if they exceeded their mandate. If they did it's a so sorry we will go reword it slightly so you have to go to court again.

Reason why no FM stereo radio on your smartphone

[nickweller]

"The vast majority of routers are manufactured as System on Chip devices, with the radio module and CPU integrated in a single package."

Except the radio module is disabled as the FM radio stations lobbied against it. That's why you can't listen to FM stereo on your smartphone .. ref

Linksys made a modder version

[raymorris]

Some certainly don't care for it.

On the other hand, the "wrt" in dd-wrt and openwrt refers to the WRT-54 line of routers from Linksys. It was the first one that had widely available third-party firmware.

When Linksys changed their internal architecture to use less expensive parts, they also starting selling a special modder version which retained dd-wrt compatible internals. So that's one example of _catering_ to people who choose open firmware.

On a related note in a different industry, Roomba did the same.

NSA backdoor

[johncandale]

guaranteed this is to protect a NSA or planned NSA backdoor that is hardware based

Comment system down for a whole WEEK

[craighansen]

I noticed when I put in my comments that the deadline has been extended by about a month, but still, I put a comment in before the FCC took their system down for a WEEK for a software upgrade. That in itself ought to be an indication of how wrong-headed this regulation is - even the FCC can't write software that doesn't fail and require modification in the field. This regulation will effectively freeze development of wireless routers and other wireless devices that are key to Internet security and ensure that these devices are full of unfixable software defects that when discovered, make these products immediately and irreversably worthless. Not that any of these routers and devices are actually unfixable or irreversably damaged, but they are effectively so, because manufacturers often take no obligation to repair broken software in products that have expired warranties. Unfortunately, it's the nature of these software defects that the entire manufactured base of product become 100% defective all at once upon the discovery of a critical software security defect - that's world's away from the kind of random, slowly developing defects that result in poorly manufactured hardware. For example, all of my twenty or so personally owned routers would have needed to have been thrown away and replaced when "Heartbleed" was uncovered, and again when "Shellshock" was uncovered, except that they were all running open software for which fixes were provided by the open source community. If I had to rely on the kindness of profit-seeking router manufacturers, they'd all be in the garbage bin, so that I could "shell-out" for new routers. Others have written that millions of devices will never be fixed because of effectively abandoned support of these devices: http://www.technologyreview.co... ..or have exposed long-standing vulnerabilties left unfixed: https://www.mocana.com/blog/20...

This one-week downtime is unfortunate, because the news may be forgotten by this community by the time the FCC restores the ability to provide comments online. Someone needs to ping slashdot back in a week when the FCC restores service, or else this ill-considered proposal may become part of established regulation.

Re:Nope.FCC application form: "protected from dd-w

[shutdown+-p+now]

The problem being that DD-WRT and the like have been pretty much letting anyone use anything

The question that you should be asking at this point is: how many real-world issues has it created?

Re:Reason why no FM stereo radio on your smartphon

[flopsquad]

Great link, but you have the bad guys backwards. It's the mobile industry that wants to keep FM inoperable (as it competes with revenue-generating data plans), and the National Association of Broadcasters (along with FEMA and some state actors) who want the FM tuners turned on--any extra ears listening to FM mean extra ad revenue for NAB members.

Re:My comment to the FCC regarding several securit

[Z00L00K]

I would just want to add the fact that many commercial routers/firewalls comes with UPnP enabled - a "nice" little security hole allowing any "compromised" device on the inside to open up the firewall unknowingly to the user.

The maximum emitted power of an RF device can be constrained in hardware so that maximum power can't be exceeded.

Re:Totally enforceable!

[Bengie]

I'm not much for people who think wifi is dangerous, but unless this 1kw antenna was on top of a tall mast to keep the square law strong, that's a lot of energy.

Re:Totally enforceable!

[TWX]

When the license plate on the car is their ham radio callsign, they are hams.

There are three of them in the neighborhood that I work in. I think one of them took it too far, he had gone to the extent of putting large "EMERGENCY Call 911" decals on his quarter panels behind the wheel wells, a few weeks later the seal on the door, the REACT TEAM marking, the lightbar, and the EMERGENCY Call 911 logos were all removed, and "UMBRELLA CORPORATION" had replaced them, painted on the quarter panels between the tail lights and the rear door. The callsign license plate is still on the car.

I don't see that many obvious CB installations around here anymore. Most are on heavy trucks, some are on obviously offroad-used SUVs and light trucks, but never on cars or vans or crossovers. I see non-crown-vic cars with ham radio rigs, obvious because of the number of antennas for different frequencies, and usually with a callsign plate or window decal, or occasionally a simplex frequency decal, and I see a decent number of minivans and trucks with rigs, usually using the roof of the minivan as a ground-plane or a headache rack on a pickup as a mounting point, and occasionally on SUVs too. Probably more ham radio setups than CB.

I only have a tech-no-code license, and I'm only at that point because I didn't feel like learning Morse code. Now that one can go much higher with license class without code though, I suspect that a lot of people that would have been CB users that want to feel like they have some kind of authority have gone the ham route now that it's much easier without the Morse code requirement. It also seems to be quickly becoming a bastion of alternative "news" like infowars and other questionable outlets, which I find ironic given that there is a government licensing requirement in the first place, and that all transmissions are to be unencrypted and listenable to all.

Re:Totally enforceable!

[HornWumpus]

It sure was. The pin was vaporized.